Owning Indian scammers
A couple of months ago while I was watching KitBoga livestream he leaked the address of a fake tech-support website, made in WordPress. The now dead site was “password protected” by the Hide My Site plugin. Thus I decided to take a look at the source-code and try to own the shit out of the scammers. Target aesthetics A quick look through the code I downloaded the source-code and I started analyzing index.php. After about 5 minutes I get to the important part 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 <?php public function verify_login(){ //a password was entered. first let's confirm the user isn't blocked... if ((isset($_POST['hwsp_motech']))) { $this->security->track_ip(); } do_action( 'hidemy_beforeverify', $this ); #use this hook to add additional logic before verifying password entry //set access cookie if password is correct if ((isset($_POST['hwsp_motech']) AND ($this->security->needs_to_wait != 1) AND ($_POST['hwsp_motech'] != "")) AND ((!empty($this->verifyother)) or ($_POST['hwsp_motech'] == get_option($this->plugin_slug.'_password')) )) { setcookie($this->get_cookie2_name(), 1, $this->get_cookie_duration(), '/'); $cookie_just_set = 1; $this->cookie_just_set = 1; $this->security->remove_ip(); $this->attempt_status = "accepted"; do_action( 'hidemy_loginattempted', $this ); #use this hook to take an action upon login acceptance... } //if //failother is true and default cookie was not just set, or no cookie is set AND cookie was not just set //AND there is no admin bypass and this is not hmspreview //then show the login page if( (isset($_GET['hmspreview']) && ($_GET['hmspreview'] == 'true')) or ( ( ( (!empty($this->failother)) AND ($this->failother) AND (empty($cookie_just_set)) ) or ( (empty($_COOKIE[$this->get_cookie2_name()])) AND (empty($cookie_just_set)) ) ) AND ( ($this->no_admin_bypass()) AND (!(isset($_GET['hmspreview']) && ($_GET['hmspreview'] == 'true'))) ) AND (empty($this->open_to_public)) ) ) { ... ...